CVE-2023-2314

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Jul 29, 2023

Updated: Aug 10, 2023

CWE ID 345

Summary

CVE-2023-2314 is a vulnerability affecting Google Chrome's DevTools up to version 111.0.5563.64. This issue involves insufficient data validation, enabling a remote attacker to bypass navigation restrictions by using a specially crafted HTML page. Despite the low Chromium security severity rating, it's essential to update Chrome browsers to ensure protection against this type of attack. Attackers could potentially use this vulnerability to gain unauthorized access to sensitive information or manipulate user actions on malicious websites.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sJpVdU
https://www.cve.org/CVERecord?id=CVE-2023-2314
https://nvd.nist.gov/vuln/detail/CVE-2023-2314

Back to Vulnerability Database

CVE-2023-2314

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations